amazon

In April 2014, OpenSSL, a software library utilized mainly for the purposes of secure communications, revealed a gaping vulnerability in its software. Nicknamed Heartbleed, the flaw allowed attackers to take advantage of the dialogue between a computer and the server, otherwise known as the heartbeat, by sending malicious heartbeat signals to trick the server into sending back a chunk of its memory. Thanks to this flaw in the cryptographic software library, attackers were able to gain easy access to names and passwords of users, to eavesdrop on previously encrypted communications, and to impersonate both websites and visitors. Read More